Description
6 month + contract for a Security Engineer with CISSP or CISA certification.
Responsibilities include:
Analyze, troubleshoot, and investigate security-related, information systems anomalies based on security platform reporting, network traffic, log files, host-based and automated security alerts.
Maintain, configure, and analyze network and host-based security platforms
Evaluate systems using vulnerability scanners and manual techniques to verify system security settings and configurations.
Provide reoccurring reports for network and host-based security solutions
Maintain and update relevant system and process documentation and develop ad-hoc reports as needed.
- Require experience managing audits, planning tasks, prioritizing, compliance reporting.
- Knowledge and experience working with PCI standards. Should have experience working with system, firewall, database, application logs. Understanding of technical aspect of information security including TCP/IP, Firewall, Encryption, Certificates, IPS, syslogs and SIEM, Antivirus, APT, SIEM, OWASP.
- Must be experienced in Microsoft Active Directory, Puppet, security settings, group policies.
- The position will include a mix of compliance related work (60%) and security administration duties (40%). Compliance work will include the management, planning and execution of security audit, collection of evidences, and follow-up on daily, monthly, yearly tasks.
- Plan and participate in PCI audit preparation, 3rd party audit, run reports, participate in remediation projects.